Changelog for
pki-ocsp-9.0.10-1.fc17.noarch.rpm :
Fri Mar 16 13:00:00 2012 Ade Lee
9.0.10-1
- BZ 802396 - Change location of TOMCAT_LOG to match tomcat6 changes
Fri Mar 9 13:00:00 2012 Matthew Harmsen 9.0.9-1
- Bugzilla Bug #796006 - Get DOGTAG_9_BRANCH GIT repository in-sync
with DOGTAG_9_BRANCH SVN repository . . .
- Bugzilla Bug #787806 - RSA should be default selection for transport
key till \"ECC phase 4\" is implemented
Wed Feb 22 13:00:00 2012 Matthew Harmsen 9.0.8-2
- Add \'-DSYSTEMD_LIB_INSTALL_DIR\' override flag to \'cmake\' to address changes
in fundamental path structure in Fedora 17
Fri Oct 28 14:00:00 2011 Matthew Harmsen 9.0.8-1
- Bugzilla Bug #749945 - Installation error reported during CA, DRM,
OCSP, and TKS package installation . . .
Thu Sep 22 14:00:00 2011 Matthew Harmsen 9.0.7-1
- Bugzilla Bug #734590 - Refactor JNI libraries for Fedora 16+ . . . (mharmsen)
- Bugzilla Bug #699809 - Convert CS to use systemd (alee)
- Bugzilla Bug #730146 - SSL handshake picks non-FIPS ciphers in FIPS mode (cfu)
Mon Sep 12 14:00:00 2011 Matthew Harmsen 9.0.6-1
- Bugzilla Bug #734590 - Refactor JNI libraries for Fedora 16+ . . .
- Bugzilla Bug #699809 - Convert CS to use systemd (alee)
Tue Sep 6 14:00:00 2011 Ade Lee 9.0.5-1
- Bugzilla Bug #699809 - Convert CS to use systemd (alee)
Tue Aug 23 14:00:00 2011 Ade Lee 9.0.4-1
- Bugzilla Bug #712931 - CS requires too many ports
to be open in the FW
Thu Jul 14 14:00:00 2011 Matthew Harmsen 9.0.3-1
- Bugzilla Bug #693815 - /var/log/tomcat6/catalina.out owned by pkiuser
(jdennis)
- Bugzilla Bug #699837 - service command is not fully backwards
compatible with Dogtag pki subsystems (mharmsen)
- Bugzilla Bug #649910 - Console: an auditor or agent can be added to an
administrator group. (jmagne)
- Bugzilla Bug #669226 - Remove Legacy Build System (mharmsen)
- Updated release of \'jss\'
Tue Apr 26 14:00:00 2011 Matthew Harmsen 9.0.2-1
- Bugzilla Bug #693815 - /var/log/tomcat6/catalina.out owned by pkiuser
- Bugzilla Bug #699837 - service command is not fully backwards compatible
with Dogtag pki subsystems
Fri Mar 25 13:00:00 2011 Matthew Harmsen 9.0.1-1
- Bugzilla Bug #690950 - Update Dogtag Packages for Fedora 15 (beta)
- Bugzilla Bug #683581 - CA configuration with ECC(Default
EC curve-nistp521) CA fails with \'signing operation failed\'
- Bugzilla Bug #684381 - CS.cfg specifies incorrect type of comments
- Require \"jss >= 4.2.6-15\" as a build and runtime requirement
Wed Dec 1 13:00:00 2010 Matthew Harmsen 9.0.0-1
- Updated Dogtag 1.3.x --> Dogtag 2.0.0 --> Dogtag 9.0.0
- Bugzilla Bug #620925 - CC: auditor needs to be able to download audit logs
in the java subsystems
- Bugzilla Bug #583825 - CC: Obsolete servlets to be removed from web.xml
as part of CC interface review
- Bugzilla Bug #583823 - CC: Auditing issues found as result of
CC - interface review
- Bugzilla Bug #586700 - OCSP Server throws fatal error while using
OCSP console for renewing SSL Server certificate.
- Bugzilla Bug #558100 - host challenge of the Secure Channel needs to be
generated on TKS instead of TPS.
- Bugzilla Bug #630121 - OCSP responder lacking option to delete or disable
a CA that it serves
- Bugzilla Bug #634663 - CA CMC response default hard-coded to SHA1
- Bugzilla Bug #504061 - ECC: unable to install subsystems - phase 1
- Bugzilla Bug #637330 - CC feature: Key Management - provide signature
verification functions (JAVA subsystems)
- Bugzilla Bug #555927 - rhcs80 - AgentRequestFilter servlet and
port fowarding for agent services
- Bugzilla Bug #631179 - Administrator is not allowed to remove
ocsp signing certificate using console
- Bugzilla Bug #638242 - Installation Wizard: at SizePanel, fix selection of
signature algorithm; and for ECC curves
- Bugzilla Bug #529945 - (Instructions and sample only) CS 8.0 GA release --
DRM and TKS do not seem to have CRL checking enabled
- Bugzilla Bug #609641 - CC: need procedure (and possibly tools) to help
correctly set up CC environment
- Bugzilla Bug #651916 - kra and ocsp are using incorrect ports
to talk to CA and complete configuration in DonePanel
- Bugzilla Bug #651977 - turn off ssl2 for java servers (server.xml)
- Bugzilla Bug #489385 - references to rhpki
- Bugzilla Bug #649910 - Console: an auditor or agent can be added to
an administrator group.
- Bugzilla Bug #632425 - Port to tomcat6
- Bugzilla Bug #638377 - Generate PKI UI components which exclude
a GUI interface
- Bugzilla Bug #653576 - tomcat5 does not always run filters on servlets
as expected
- Bugzilla Bug #642357 - CC Feature- Self-Test plugins only check for
validity
- Bugzilla Bug #643206 - New CMake based build system for Dogtag
- Bugzilla Bug #499494 - change CA defaults to SHA2
- Bugzilla Bug #649343 - Publishing queue should recover from CA crash.
- Bugzilla Bug #491183 - rhcs rfe - add rfc 4523 support for pkiUser and
pkiCA, obsolete 2252 and 2256
- Bugzilla Bug #223346 - Two conflicting ACL list definitions in source
repository
- Bugzilla Bug #663546 - Disable the functionalities that are not exposed
in the console
- Bugzilla Bug #656733 - Standardize jar install location and jar names
- Bugzilla Bug #661142 - Verification should fail when
a revoked certificate is added
- Bugzilla Bug #662127 - CC doc Error: SignedAuditLog expiration time
interface is no longer available through console
- Bugzilla Bug #531137 - RHCS 7.1 - Running out of Java Heap Memory During
CRL Generation
- Bugzilla Bug #672111 - CC doc: certServer.usrgrp.administration missing
information
- Bugzilla Bug #583825 - CC: Obsolete servlets to be removed from web.xml
as part of the CC interface review
- Bugzilla Bug #656663 - Please Update Spec File to use \'ghost\' on files
in /var/run and /var/lock
- Bugzilla Bug #674917 - Restore identification of Tomcat-based PKI subsystem
instances
Wed Aug 4 14:00:00 2010 Matthew Harmsen 1.3.3-1
- Bugzilla Bug #608086 - CC: CA, OCSP, and DRM need to add more audit calls
- Bugzilla Bug #527593 - More robust signature digest alg, like SHA256
instead of SHA1 for ECC
- Bugzilla Bug #528236 - rhcs80 web conf wizard - cannot specify CA signing
algorithm
- Bugzilla Bug #533510 - tps exception, cannot start when signed audit true
- Bugzilla Bug #529280 - TPS returns HTTP data without ending in 0rn
per RFC 2616
- Bugzilla Bug #498299 - Should not be able to change the status manually
on a token marked as permanently lost or destroyed
- Bugzilla Bug #554892 - configurable frequency signed audit
- Bugzilla Bug #500700 - tps log rotation
- Bugzilla Bug #562893 - tps shutdown if audit logs full
- Bugzilla Bug #557346 - Name Constraints Extension cant be marked critical
- Bugzilla Bug #556152 - ACL changes to CA and OCSP
- Bugzilla Bug #556167 - ACL changes to CA and OCSP
- Bugzilla Bug #581004 - add more audit logging to the TPS
- Bugzilla Bug #566517 - CC: Add client auth to OCSP publishing, and move
to a client-auth port
- Bugzilla Bug #565842 - Clone config throws errors - fix key_algorithm
- Bugzilla Bug #581017 - enabling log signing from tps ui pages causes tps
crash
- Bugzilla Bug #581004 - add more audit logs
- Bugzilla Bug #595871 - CC: TKS needed audit message changes
- Bugzilla Bug #598752 - Common Criteria: TKS ACL analysis result.
- Bugzilla Bug #598666 - Common Criteria: incorrect ACLs for signedAudit
- Bugzilla Bug #504905 - Smart card renewal should load old encryption cert
on the token.
- Bugzilla Bug #499292 - TPS - Enrollments where keys are recovered need
to do both GenerateNewKey and RecoverLast operation for encryption key.
- Bugzilla Bug #498299 - fix case where no transitions available
- Bugzilla Bug #595391 - session domain table to be moved to ldap
- Bugzilla Bug #598643 - Common Criteria: incorrect ACLs (non-existing groups)
- Bugzilla Bug #504359 - pkiconsole - Administrator Group\'s Description
References Fedora
Mon Apr 26 14:00:00 2010 Ade Lee 1.3.2-2
- Bugzilla Bug 584917- Can not access CA Configuration Web UI
after CA installation
Wed Apr 21 14:00:00 2010 Andrew Wnuk 1.3.2-1
- Bugzilla Bug #493765 - console renewal fix for ca, ocsp, and ssl
certificates
Tue Feb 16 13:00:00 2010 Matthew Harmsen 1.3.1-2
- Bugzilla Bug #566059 - Add \'pki-console\' as a runtime dependency
for CA, KRA, OCSP, and TKS . . .
Mon Feb 8 13:00:00 2010 Matthew Harmsen 1.3.1-1
- Bugzilla Bug #562986 - Supply convenience symlink(s) for backwards
compatibility (rename jar files as appropriate)
Fri Jan 15 13:00:00 2010 Kevin Wright 1.3.0-4
- BuildRequires: dogtag-pki-ocsp-ui
Fri Jan 8 13:00:00 2010 Matthew Harmsen 1.3.0-3
- Corrected \"|| :\" scriptlet logic (see Bugzilla Bug #475895)
- Bugzilla Bug #553074 - Apply \"registry\" logic to pki-ocsp . . .
- Bugzilla Bug #553844 - New Package for Dogtag PKI: pki-ocsp
Mon Dec 14 13:00:00 2009 Kevin Wright 1.3.0-2
- Removed \'with exceptions\' from License
Thu Oct 15 14:00:00 2009 Ade Lee 1.3.0-1 - Bugzilla Bug #X
- Packaging for Fedora Dogtag